OBSERVE. ANALYZE. ACT.
Support Login

System Management ยท Version 26.2

SNMP Service

Display and configure SNMP polling, SNMPv3 security, trap destinations, and test trap delivery.

UI Path: System Settings > SNMP and Trap Service ID: config_system_snmp
Workflow
  1. Open System Settings and choose SNMP and Trap Service.
  2. Review SNMP service enablement, version, port, and community or SNMPv3 credentials.
  3. Configure primary and optional second SNMP trap server settings.
  4. Optionally enable Send Trap for Test Purpose and enter a Test Trap message.
  5. Apply the workflow and verify the result with show system snmp.

Overview

Use SNMP and Trap Service to configure SNMP polling access to the appliance and SNMP trap delivery to external monitoring systems. The workflow controls SNMP service enablement, service port, community or SNMPv3 credentials, primary and second trap destinations, and one-time test trap delivery.

The same settings are available from the CLI through:

config system snmp
show system snmp

Typical Uses

Use this topic when a monitoring system needs to poll the appliance with SNMP, or when appliance events should be sent to an SNMP trap receiver.

Typical examples:

Show SNMP settings:  show system snmp
Display from config: config system snmp
Enable SNMPv2c polling:
  config system snmp enable true version v2 port 161 community_string public
Enable SNMPv3 polling:
  config system snmp enable true version v3 security_level auth_priv security_name monitor auth_protocol sha1 auth_key AuthKey123 priv_protocol aes priv_key PrivKey123
Send a test trap:
  config system snmp enable_trap true trap_server 10.0.0.50 trap_port 162 trap_version v2 trap_community_string public send_test_trap true test_message "SNMP trap test"

Prerequisites

  • Confirm that you have administrator permission to change system settings.
  • Record the current settings with show system snmp.
  • Confirm which SNMP version the monitoring system uses: v1, v2, or v3.
  • For SNMPv1 or SNMPv2c, confirm the read-only community string.
  • For SNMPv3, confirm the security name, security level, auth protocol, auth key, privacy protocol, and privacy key.
  • Confirm the SNMP service port. The standard polling port is 161.
  • Confirm the trap receiver address, trap port, trap version, and credentials. The standard trap port is 162.
  • Confirm firewall, ACL, and routing rules between the appliance and the monitoring or trap receiver host.
  • Use quotes for values that contain spaces.
  • Treat community strings and SNMPv3 keys as sensitive.

Workflow

  1. Open System Settings.
  2. Choose SNMP and Trap Service.
  3. Review MIB, Enable SNMP Service, SNMP Version, Service Port, and the matching community or SNMPv3 credential fields.
  4. Configure SNMP Trap Server and, if needed, SNMP Trap HA - AA Server No.2.
  5. Enable Send Trap for Test Purpose and enter Test Trap when you need to validate trap delivery.
  6. Apply the workflow.
  7. Verify the saved settings in the web view or with show system snmp.

Expected Behavior

The workflow displays the current SNMP settings and applies the selected changes to the saved system configuration.

When Enable SNMP Service is disabled, polling settings are retained but the SNMP polling service is not exposed. When enabled, the appliance listens on the configured Service Port and uses the selected SNMP version and credentials.

Trap delivery settings are relayed to l01_evlogd. When a system event carries an SNMP trap hint, l01_evlogd sends the trap to each enabled trap target.

When Send Trap for Test Purpose is enabled, the workflow validates the enabled trap targets and sends Test Trap to each enabled trap server before committing the trap delivery settings. The workflow log includes the server, port, version, and message for each test trap. Send Trap for Test Purpose and Test Trap are one-time workflow inputs and are not persistent SNMP settings.

In The Web UI

Review SNMP Settings

  1. Open System Settings.
  2. Choose SNMP and Trap Service.
  3. Review MIB if the monitoring system needs the Infinicore MIB files.
  4. Review Enable SNMP Service, SNMP Version, Service Port, and the visible credential fields.
  5. Apply no changes if you only need to inspect the current settings.

Configure SNMP Polling

  1. Set Enable SNMP Service.
  2. Select SNMP Version.
  3. Set Service Port.
  4. For SNMPv1 or SNMPv2c, enter Read-Only Community String.
  5. For SNMPv3, set SNMP V3 Security Level and SNMP V3 USM Security Username.
  6. For SNMPv3 authentication, set SNMP V3 Auth Protocol and SNMP V3 Auth Key (Min. 8 characters).
  7. For SNMPv3 privacy, set SNMP V3 Privacy Protocol and SNMP V3 Privacy Key (Min. 8 characters).
  8. Apply the workflow.

Configure SNMP Traps

  1. In SNMP Trap Server, enable Enable SNMP Trap when the primary trap receiver should receive events.
  2. Enter Trap Server Address and Trap Server Port.
  3. Select Trap Serve Version.
  4. For SNMPv1 or SNMPv2c traps, enter Trap Community String.
  5. For SNMPv3 traps, set SNMP V3 Trap Security Level, SNMP V3 Trap USM Security Username, and the matching auth or privacy fields.
  6. In SNMP Trap HA - AA Server No.2, enable Enable 2nd SNMP Trap Server if a second receiver should receive the same traps.
  7. Enter the second trap server fields.
  8. Apply the workflow.

Send A Test Trap

  1. Configure and enable at least one trap server.
  2. Set Send Trap for Test Purpose.
  3. Enter a clear Test Trap message, such as SNMP trap test from 01Layer.
  4. Apply the workflow.
  5. Confirm that the trap receiver receives the test trap.
  6. Review the workflow log for entries that include the target server, port, version, and message.

Check From The CLI

Use either command below to display the current SNMP settings:

config system snmp
show system snmp

The config form without additional fields is display-only. It does not modify the configuration.

CLI Help Reference

Display the SNMP fields:

config system snmp ?

Expected fields:

<Enter>                      - Display current settings
enable                       - Enable SNMP service
version                      - SNMP version
port                         - SNMP service port
community_string             - Read only community string
security_level               - SNMP V3 security level
security_name                - SNMP V3 User-based Security Model Username
security_name_can_write      - User can write to agent
auth_protocol                - SNMP V3 authentication protocol
auth_key                     - SNMP V3 authentication key
priv_protocol                - SNMP V3 privacy protocol
priv_key                     - SNMP V3 privacy key
enable_trap                  - Enable SNMP trap service
trap_server                  - Trap server address
trap_port                    - SNMP trap server port
trap_version                 - Trap server version
trap_community_string        - SNMP trap community string
trap_security_level          - SNMP V3 trap security level
trap_security_name           - SNMP V3 trap security username
trap_auth_protocol           - SNMP V3 trap authentication protocol
trap_auth_key                - SNMP V3 trap authentication key
trap_priv_protocol           - SNMP V3 trap privacy protocol
trap_priv_key                - SNMP V3 trap privacy key
enable_backup_trap           - Enable second SNMP trap server
backup_trap_server           - Second trap server address
backup_trap_port             - Second trap server port
backup_trap_version          - Second trap server version
backup_trap_community_string - Second trap server community string
backup_trap_security_level   - Second SNMP V3 trap security level
backup_trap_security_name    - Second SNMP V3 trap security username
backup_trap_auth_protocol    - Second SNMP V3 trap authentication protocol
backup_trap_auth_key         - Second SNMP V3 trap authentication key
backup_trap_priv_protocol    - Second SNMP V3 trap privacy protocol
backup_trap_priv_key         - Second SNMP V3 trap privacy key
send_test_trap               - Send a one-time test trap
test_message                 - Test trap message

Change From The CLI

Enable SNMPv2c polling:

config system snmp enable true version v2 port 161 community_string public

Enable SNMPv3 polling with authentication and privacy:

config system snmp enable true version v3 port 161 security_level auth_priv security_name monitor auth_protocol sha1 auth_key AuthKey123 priv_protocol aes priv_key PrivKey123

Configure the primary SNMPv2c trap receiver:

config system snmp enable_trap true trap_server 10.0.0.50 trap_port 162 trap_version v2 trap_community_string public

Configure the second SNMPv2c trap receiver:

config system snmp enable_backup_trap true backup_trap_server 10.0.0.51 backup_trap_port 162 backup_trap_version v2 backup_trap_community_string public

Send a one-time test trap to the enabled trap receiver:

config system snmp enable_trap true trap_server 10.0.0.50 trap_port 162 trap_version v2 trap_community_string public send_test_trap true test_message "SNMP trap test from 01Layer"

Disable SNMP polling while retaining saved settings:

config system snmp enable false

Disable trap delivery while retaining saved trap settings:

config system snmp enable_trap false enable_backup_trap false

Field Reference

CLI Field UI Field Type Or Values Notes
enable Enable SNMP Service Boolean Enables or disables SNMP polling service.
version SNMP Version v1, v2, or v3 v2 is displayed as V2c in the UI.
port Service Port Integer from 1 to 65535 SNMP polling service port.
community_string Read-Only Community String Password string Used for SNMPv1 and SNMPv2c polling.
security_level SNMP V3 Security Level no_auth_no_priv, auth_only, or auth_priv Used for SNMPv3 polling.
security_name SNMP V3 USM Security Username String SNMPv3 user-based security model user name.
security_name_can_write User can Write Boolean Allows the configured SNMPv3 user to write to the agent.
auth_protocol SNMP V3 Auth Protocol md5 or sha1 Used when the SNMPv3 security level includes authentication.
auth_key SNMP V3 Auth Key (Min. 8 characters) Password string, minimum 8 characters SNMPv3 authentication key.
priv_protocol SNMP V3 Privacy Protocol aes or des Used when the SNMPv3 security level includes privacy.
priv_key SNMP V3 Privacy Key (Min. 8 characters) Password string, minimum 8 characters SNMPv3 privacy key.
enable_trap Enable SNMP Trap Boolean Enables or disables the primary trap receiver.
trap_server Trap Server Address IP address or host string Primary trap receiver address.
trap_port Trap Server Port Integer from 1 to 65535 Primary trap receiver port.
trap_version Trap Serve Version v1, v2, or v3 Primary trap version. The current UI label says "Serve".
trap_community_string Trap Community String Password string Used for SNMPv1 and SNMPv2c traps.
trap_security_level SNMP V3 Trap Security Level no_auth_no_priv, auth_only, or auth_priv Used for SNMPv3 traps to the primary receiver.
trap_security_name SNMP V3 Trap USM Security Username String SNMPv3 trap security user name for the primary receiver.
trap_auth_protocol SNMP V3 Trap Auth Protocol md5 or sha1 Primary SNMPv3 trap authentication protocol.
trap_auth_key SNMP V3 Trap Auth Key (Min. 8 characters) Password string, minimum 8 characters Primary SNMPv3 trap authentication key.
trap_priv_protocol SNMP V3 Trap Privacy Protocol aes or des Primary SNMPv3 trap privacy protocol.
trap_priv_key SNMP V3 Trap Privacy Key (Min. 8 characters) Password string, minimum 8 characters Primary SNMPv3 trap privacy key.
enable_backup_trap Enable 2nd SNMP Trap Server Boolean Enables or disables the second trap receiver.
backup_trap_server Trap Server Address IP address or host string Second trap receiver address.
backup_trap_port 2nd Trap Server Port Integer from 1 to 65535 Second trap receiver port.
backup_trap_version 2nd Trap Server Version v1, v2, or v3 Second trap receiver version.
backup_trap_community_string 2nd Trap Server Community String Password string Used for SNMPv1 and SNMPv2c traps to the second receiver.
backup_trap_security_level SNMP V3 Trap Security Level no_auth_no_priv, auth_only, or auth_priv Used for SNMPv3 traps to the second receiver.
backup_trap_security_name 2nd SNMP V3 Trap USM Security Username String SNMPv3 trap security user name for the second receiver.
backup_trap_auth_protocol 2nd SNMP V3 Trap Auth Protocol md5 or sha1 Second SNMPv3 trap authentication protocol.
backup_trap_auth_key 2nd SNMP V3 Trap Auth Key (Min. 8 characters) Password string, minimum 8 characters Second SNMPv3 trap authentication key.
backup_trap_priv_protocol 2nd SNMP V3 Trap Privacy Protocol aes or des Second SNMPv3 trap privacy protocol.
backup_trap_priv_key 2nd SNMP V3 Trap Privacy Key (Min. 8 characters) Password string, minimum 8 characters Second SNMPv3 trap privacy key.
send_test_trap Send Trap for Test Purpose Boolean One-time action; not saved as a persistent setting.
test_message Test Trap String One-time test trap message; not saved as a persistent setting.

Confirmation And Rollback

Applying the workflow saves the SNMP polling and trap configuration. To roll back, reapply the previous values recorded from show system snmp.

If trap testing is enabled, at least one trap server must also be enabled. If no trap server is enabled, the workflow reports an error instead of sending the test trap.

To disable polling without deleting saved polling settings:

config system snmp enable false

To disable trap delivery without deleting saved trap receiver settings:

config system snmp enable_trap false enable_backup_trap false

Notes

  • MIB downloads the appliance MIB files for use by SNMP monitoring tools.
  • SNMPv1 and SNMPv2c use community strings. SNMPv3 uses security name, security level, authentication, and optional privacy fields.
  • send_test_trap and test_message are action inputs. They are used during the workflow run and are not persistent settings.
  • Trap delivery is handled by l01_evlogd; SNMP polling service settings are applied through the system SNMP service configuration.
  • Trap delivery depends on system events that include SNMP trap metadata. Not every event produces an SNMP trap.

Troubleshooting

SNMP Manager Cannot Poll The Appliance

Verify enable, version, port, and the polling credentials. Confirm that the manager can route to the appliance and that firewall or ACL settings permit UDP access to the configured Service Port.

SNMPv3 Polling Fails

Verify security_level, security_name, auth_protocol, auth_key, priv_protocol, and priv_key. Keys used with authentication or privacy must meet the minimum length required by the SNMP agent and monitoring tool.

Test Trap Is Not Sent

Confirm that send_test_trap is true for the workflow run and that at least one of enable_trap or enable_backup_trap is enabled. Verify the trap server address, port, version, community string, and SNMPv3 credentials.

Trap Receiver Does Not See Events

Confirm the receiver is listening on the configured port and accepts the configured SNMP version and credentials. Check network routing and firewall rules from the appliance to the receiver. Also confirm that the event being tested emits an SNMP trap; ordinary event log entries may not produce traps.

The SNMP Command Is Not Listed

Use config system ? and look for snmp. The command path is config system snmp; the legacy config system service snmp path is not the documented command name.

Use Device Management Access ACL to control which clients can reach the management plane. Use System Access Methods to configure SSH, HTTP, and HTTPS management access. Use Remote Syslog when event forwarding should use syslog instead of SNMP traps.

Related Topics

System Settings SNMP SNMPv3 Traps MIB l01sh